《评估国家网络安全战略的框架.pdf》由会员分享,可在线阅读,更多相关《评估国家网络安全战略的框架.pdf(52页珍藏版)》请在三个皮匠报告上搜索。
1、#BHUSA BlackHatEventsA Framework For Evaluating NationalCybersecurity StrategiesFred Heiding,Alex ONeill,Lachlan Price,Eric Rosenbach#BHUSA BlackHatEventsTeamResearch Fellow,Harvard_fredrikh01I hacked the King ofSwedenFred HeidingAlex ONeillIndependent ResearcherLachlan PriceMPP Student and Research
2、Assistant,HarvardEric RosenbachLecturer in Public Policy,HarvardIs this ourfuture?1983Beginning of the internetCyber strategies are pretty new!20091st UK,Australian cyber strategies2024Today20111st US,German strategies2nd UK strategy20162nd German,Australian strategies3rd UK strategy,UKNCSC formed20
3、182nd USstrategyCISAformed20203rdAustralianstrategy2021Cyberspace solarium commission3rd German strategy20224th UK strategy20233rd US strategy4th Australian strategyDo we knowwhat weare doing?Do we knowwhat weare doing?What does a good cyber strategy entail?How technical should the strategy be?Who i
4、s the audience?Vision statement or practical policy guide?How We Conducted Our Research#BHUSA BlackHatEventsintro-method(how)-what we discovered-conclusionOther evaluation frameworks existNCSI,ITU,MITAbsolute vs relative scoringHow to justify the scores?Can countries be scored in isolation?Related w
5、orkCreating the Scorecard Government selectionAnalysisStrong cyber capabilities1.Diversity(political,geographic,etc.)2.Published after 20203.Publicly accessible+English4.Evaluation Framework268 criteria over 5 pillarsInterviews25+interviewees(9/23-7/24)Leading cyber experts andpolicymakersEvaluation
6、 Framework268 criteria over 5 pillarsInterviews25+interviewees(9/23-7/24)Leading cyber experts andpolicymakersLeadingMeeting the barLaggingCreating the Scorecard Government selectionAnalysisStrong cyber capabilities1.Diversity(political,geographic,etc.)2.Published after 20203.Publicly accessible+Eng